<?php 
include ("conn.php");
$account = $_POST['account'];
$password = $_POST['password'];
$sql="select id from user where account ='$account'and password ='$password'";
$result = $conn -> query($sql);
if ($result -> num_rows > 0) {
	session_start();
	$_SESSION["user.account"]= $account;
	$result -> free_result();
	$conn -> close();
	header("location:../index.php");
} else {
	$result -> free_result();
	$conn -> close();
	header("location:../login.php?message=用户名或密码不一致");
}
?>